Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

873 advisories

Loading
HkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common... Critical Unreviewed
CVE-2024-52677 was published Nov 20, 2024
Permissions vulnerability in Fuel-CMS v.1.4.6 allows a remote attacker to execute arbitrary code... Critical Unreviewed
CVE-2020-22151 was published Jul 3, 2023
The WooCommerce Upload Files WordPress plugin before 59.4 ran a single sanitization pass to... Critical Unreviewed
CVE-2021-24171 was published May 24, 2022
The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed
CVE-2024-9659 was published Nov 23, 2024
The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed
CVE-2024-9942 was published Nov 23, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Anton Hoelstad WP Quick Setup... Critical Unreviewed
CVE-2024-52429 was published Nov 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert... Critical Unreviewed
CVE-2024-52397 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Wibergs Web CSV to html allows... Critical Unreviewed
CVE-2024-52406 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Bikram Joshi B-Banner Slider... Critical Unreviewed
CVE-2024-52405 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Halyra CDI.This issue affects... Critical Unreviewed
CVE-2024-52398 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in codeSavory BasePress Migration... Critical Unreviewed
CVE-2024-52407 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Team PushAssist Push... Critical Unreviewed
CVE-2024-52408 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Subhasis Laha Gallerio allows... Critical Unreviewed
CVE-2024-52400 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in WPExperts User Management allows... Critical Unreviewed
CVE-2024-52403 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Clarisse K. Writer Helper allows... Critical Unreviewed
CVE-2024-52399 was published Nov 17, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Bigfive CF7 Reply Manager.This... Critical Unreviewed
CVE-2024-52404 was published Nov 17, 2024
The Backup and Staging by WP Time Capsule plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed
CVE-2024-8856 was published Nov 16, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Hive Support Hive Support –... Critical Unreviewed
CVE-2024-52370 was published Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Optimal Access Inc. KBucket... Critical Unreviewed
CVE-2024-52369 was published Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in cmsMinds Boat Rental Plugin for... Critical Unreviewed
CVE-2024-52376 was published Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in DoThatTask Do That Task allows... Critical Unreviewed
CVE-2024-52374 was published Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Softpulse Infotech Picsmize... Critical Unreviewed
CVE-2024-52380 was published Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in WebTechGlobal Easy CSV Importer... Critical Unreviewed
CVE-2024-52372 was published Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Team Devexhub Devexhub Gallery... Critical Unreviewed
CVE-2024-52373 was published Nov 14, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in BdThemes Instant Image Generator... Critical Unreviewed
CVE-2024-52377 was published Nov 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database